Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209971	5.4	警告	uanw	-	Android 用 United Advantage NW Federal Cr アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6776	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209972	5.4	警告	animalcenter	-	Android 用 Light for Pets アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6775	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209973	5.4	警告	neorcha	-	Android 用 USEK アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6774	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209974	5.4	警告	bowenehs	-	Android 用 CIH Quiz game アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6773	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209975	5.4	警告	unitedecu	-	Android 用 United Educational CU アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6772	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209976	5.4	警告	uhcu	-	Android 用 United Heritage Mobile アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6771	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209977	5.4	警告	apppasta	-	Android 用 Aerospace Jobs アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6770	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209978	5.4	警告	mobilesoft	-	Android 用 Meteo Belgique アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6769	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209979	5.4	警告	anywhere anytime yoga workout project	-	Android 用 Anywhere Anytime Yoga Workout アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6768	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

209980	5.4	警告	denki	-	Android 用 Juggle! FREE アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6767	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252161	-		-	-	Incorrect credential validation in LemonLDAP::NG 2.18.x and 2.19.x before 2.19.2 allows attackers to bypass OAuth2 client authentication via an empty client_password parameter (client secret).	-	CVE-2024-45160	2024-10-10 21:51	2024-10-9	Show	GitHub Exploit DB Packet Storm

252162	6.4	MEDIUM Network	-	-	The CMSMasters Content Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's multiple shortcodes in all versions up to, and including, 1.8.8 due to insufficient …	CWE-79 Cross-site Scripting	CVE-2024-7963	2024-10-10 21:51	2024-10-9	Show	GitHub Exploit DB Packet Storm

252163	-		-	-	Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2024-9603	2024-10-10 21:51	2024-10-9	Show	GitHub Exploit DB Packet Storm

252164	-		-	-	Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)	-	CVE-2024-9602	2024-10-10 21:51	2024-10-9	Show	GitHub Exploit DB Packet Storm

252165	-		-	-	An improper authorization vulnerability exists in the Rockwell Automation affected products that could allow an unauthorized user to sign in. While removal of all role mappings is unlikely, it could …	-	CVE-2024-9412	2024-10-10 21:51	2024-10-9	Show	GitHub Exploit DB Packet Storm

252166	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip Recompute DSC Params if no Stream on Link [why] Encounter NULL pointer dereference uner mst + dsc setup. B…	CWE-476 NULL Pointer Dereference	CVE-2024-43895	2024-10-10 21:15	2024-08-26	Show	GitHub Exploit DB Packet Storm

252167	-		-	-	Improper Privilege Management vulnerability in ZTE ZXR10 1800-2S series ,ZXR10 2800-4,ZXR10 3800-8,ZXR10 160 series on 64 bit allows Functionality Bypass.This issue affects ZXR10 1800-2S series ,ZXR1…	-	CVE-2024-22068	2024-10-10 18:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

252168	-		-	-	VMware NSX contains a command injection vulnerability. A malicious actor with access to the NSX Edge CLI terminal may be able to craft malicious payloads to execute arbitrary commands on the operat…	-	CVE-2024-38817	2024-10-10 17:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

252169	-		-	-	In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privileg…	CWE-269 Improper Privilege Management	CVE-2024-7048	2024-10-10 11:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

252170	-		-	-	An OS command injection vulnerability in the admin web console of Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to obtain remote code execution.	-	CVE-2024-9380	2024-10-10 10:00	2024-10-9	Show	GitHub Exploit DB Packet Storm